Cybersecurity Engineer

Job Description

The Cybersecurity Engineer will be responsible for ensuring the organization's critical systems, intellectual property, and data are protected from cyber threats. This position reports to the Cybersecurity Manager and will frequently collaborate alongside our IT, Database, QA and Software Development departments to identify and address security vulnerabilities across the organization. A high level of technical aptitude is required to consistently reanalyze and improve strategies and processes. Availability is required to work in various after hours or weekends as well as being available 24 / 7 / 365 for any emergencies that may arise. Travel, domestically and internationally, may be required. Key Job Responsibilities

• Design, implement and maintain various security solutions (e.g SIEM, EDR, DLP, etc.).
• Perform security reviews, identify gaps in security architecture, implement security measures to resolve vulnerabilities, mitigate risks, assist developing a security risk management plan and recommend security enhancements.
• Participate in the evaluation, selection, and implementation of security technologies, such as firewalls, intrusion detection and prevention systems (IDPS), proxies, email gateway solutions, cloud security solutions as well as secure code scanning tools.
• Assess adequate access controls based on principles of least privilege and need-to-know and the effectiveness of security controls.
• Conduct vulnerability scans and recommend remediation strategies.
• Collaborate to remediate vulnerabilities to maintain a high-security standard.
• Assist with investigation and response to cybersecurity incidents and breaches.
• Implement automation measures to enhance security technologies.
• Perform risk assessments and security audits.
• Assist in the development of security policies, procedures, and guidelines.
• Assist in the development of processes and test results to obtain company security certifications (e.g. CMMC, ISO 27001, ISO 9001), demonstrating proper protection of customer data
• Represent the cybersecurity department and serve as a subject matter expert, communicating security-related information to senior management, our CISO, and our stakeholders.
• Stay up to date with the latest cybersecurity trends, technologies, regulations, and industry best practices, and make recommendations for continuous improvement of the company's security posture.
• Infuse a mindset of security in our company culture.
• Verify and update all security documentation.
• Performs other related duties as assigned.